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[57] ABSTRACT 

Copyrighted electronic media are packaged in a secure 
electronic format, and registered on associated registration 
server, which serves to provide on-line licensing and copy- 
right management for that media. Users are connected to .the 
server, e.g„ through a computer network or the Internet, to 
enable data transfers and to transact licenses to utilize the 
media. Packaged electronic media are typically created by 
an author or derivative user of the work. Once the packaged 
media is registered on the server, the media is made avail- 
able for limited use and possible license through an autho- 
rization server. This limited use is specified within the 
minimum permissions data set assigned to each packaged 
media. Without a license, users are typically permitted to 
view the packaged media — through a system which unpack- 
ages the media — but cannot save or otherwise transfer the 
media without obtaining auxiliary permissions to do so from 
the authorization server. The electronic media is authenti- 
cated through digital signatures and optional encryption. 
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SYSTEM AND METHOD FOR MANAGING More particularly, the tracing of copyright clearances to 

COPYRIGHTED ELECTRONIC MEDIA users of copyrighted electronic media in the prior art is a 

tedious and often impossible task. Specifically, authors and 

BACKGROUND OF THE INVENTION multimedia developers have had only two practical methods 

Copyright infringement and theft has increased enor- 3 for Protecting their copyrights of electronic works: one 

mously in the computer age, particularly with respect to method is to rely upon copyright laws and international 

information data transfers through the Internet. Further, treaties to prohibit unauthorized use of the media; and the 

electronic email and the communication and connectivity of omer is to encrypt the data, so that access is restricted to 

local and wide area networks (LANs and WANs, mose users witn a decryption key. 

respectively) have facilitated unauthorized use of copy- 10 In the first method, media developers typically do noth- 

righted materials by permitting tagging and/or enclosing of ing; or they attach a textual copyright warning — sometimes 

almost any electronic media, such as application software, called a 'Vatermark" — to the media. This type of "protec- 

authored text files and graphics, and musical sounds. tion" ensures free access to the media, but it works only for 

On-line services such as COMPUSERVE™ and those honest users and derivative developers who view the 

AMERICA ONLINE™ do provide some measure of copy- 15 work ^ decide whether they want to license it However, 

right protection by assessing on-line charges to the access of users developers of such media cannot be sure of the 

protected databases and to the download of selected files. authorship or integrity of the media. Authenticity is thus 

However, there is little to prevent that on-line user from sometimes increased by restricting access to the media, such 

retransmitting any downloaded files to another user con- as through the use of a password By way of example, a 

nected on the Internet. If the user is also connected to a 20 password-protected World Wide Web page provides some 

network, those downloaded files are also subject to remote measure of authenticity, but also discourages the open and 

access from yet another unauthorized user. free propagation of the information in the media 

The problems associated within electronic copyright ^ the second method, media developers can utilize pow- 
infringement are well known, particularly by those parties CT ^ encryption tools, readily available in the public 
injured by the unauthorized use of copyrighted materials. 25 <*oinam> such as those tools based on the RSA public key 
For example, the unauthorized copying of copyrighted mag- algorithm (Rives t, Shamir, & Adleman, 1977). However, the 
netic diskettes, and the electronic email and tagging and/or use of encryption to protect copyrights only serves to restrict 
enclosing of copyrighted files can result in a direct monetary access to the information within the media, like the pass- 
loss to the owner of the copyrighted works, in addition to an word described above. Moreover, after the work is decrypted 
unaccounted for gain for the unauthorized user. With the 30 on the recipient's computer, the problems of copyright 
expansion of the Internet and other computerized networks, heritage and permissions for derivative development and use 
the aggregate amount of such losses and gains is substantial. °f me media remain. 

Even the U.S. Commerce Department recognizes that These two methods favor either the user or the owner of 

serious copyright problems exist with the burgeoning 35 *he media. In the first method, for example, there is no 

growth of electronic data transfers between networked com- electronic protection coupled to the media; and it thus favors 

puters and particularly through the Internet Early in Sep- the free and fair use of the media at the expense of the 

tember 1995, for example, the Commerce Department owners' rights. On the other hand, the second method of 

issued a white paper entitled "Intellectual Property and the encryption favors the owners* rights, at least to a degree. 

National Information Infrastructure." Hie paper highlights ^ Neither method affords both fair use and ownership protec- 

the need to protect copyrighted information that is resident **on\ neither provides for automatic management of 

in cyberspace, where unauthorized users can copy original media rights, including the controlled access to media in 

works of authorship, including movies and books, by press- derivative works. Further, these methods do not intervene in 

ing a couple of keystrokes. See, V. Suss man, Copyright managing copyrights, and are beneficial only after the copy- 

wwng? A fight brews over who gets to own the future 4J ri ght issue becomes a problem. 

(cyberspace), U.S. News & World Report, Sep. 18, 1995, It is, accordingly, one object of the invention to provide 
vll9 nil p99(l). systems and methodologies to manage copyrighted elec- 
In the prior art, methods have been developed to enhance tronic media, thereby solving or reducing the afore- 
copyright protection of electronic media. For example, mentioned problems. 

AT&T Bell Laboratories has developed a system which 50 Another object of the invention is to provide a method for 

makes tiny adjustments to the spacing between words so that maintaining an electronic bibliographic record of successive 

every copy of a document utilizing the system is "unique." data transfers of protected electronic media. 

These electronic adjustments are detectable by computers Still another object of the invention provides systems and 

only because they are too small for the human eye to notice. methods for packaging and unpackaging electronic media 

By way of another example, DIGIMARC, a company in 55 within an electronic container to facilitate the management 

Portland, Oreg., recently announced a system that encodes of copyrighted electronic media. 

data into an image by carefully adjusting the digital repre- These and other objects of the invention will be apparent 

sentation of individual pixels. As in the AT&T system, the from mc description which follows, 
encoded data is not noticeable to the eye and enables some 

traceability of unauthorized copyright uses. See, S. M SUMMARY OF THE INVENTION 
Steinberg, editor of Wired Magazine, Los Angeles Times As used herein, a "copyrighted work" means any work 
column, p2, part D, Aug. 31 (1995). that is authored and protected by U.S. and international 
However, such systems operate only to detect unautho- copyright laws, including, without limitation, literary works; 
rized usage of copyrighted works in digital form. They do musical works, including any accompanying words; dra- 
not manage the access to copyrighted works, nor do they 65 matic works, including any accompanying music; panto- 
provide any systematic way of controlling the rights to mimes and choreographic works; pictorial, graphic, and 
copyrighted electronic media sculptural works; motion pictures and other audiovisual 
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works; sound recordings; and architectural works. "Elec- accesses the media. The selected information can include, 

tronic media** means any electronic form or digital repre- for example, a unique address of the user, individual or 

sentation of a copyrighted work, including multimedia company accessing or utilizing the media, or the actual 

objects, and including any form or digital representation (1) identity of the user. Preferably, the user information stored 

stored within computer memory. (2) resident on CD-ROM 5 in the usage module is recorded and stored only after 

and/or magnetic disks, (3) transmitted as a digital file auxiliary permissions are augmented to the ininimum per- 

through email, an on-line service such as missions dato set; and typicaUy, the user's identity or loca- 

COMPUSERVE™, the World Wide Web (WWW), and/or . "T . "u /F * YT I* * \i 

^ L" ~T . " . j. \_i £i ; \T. 11011 1S recorded in the course of the licensing transactions 

the Internet; and (4) communicated as a digital file within or Al _ _ ., - 0 t 

* v ' . . . * XT ^tI^ 1 with the authorization server. Like the source works 

into a computer network, such as a LAN or WAN. and . . , , . , 4 ^. 

. . ^ TV. , . . , . ' 10 extensions, the usage module can also be- resident with the 

including any communication obtained through remote T\*-vrvrT»#T*xTr 4l _ . „ . „ 4 , 

. ' . . ... _ ,„ & * t "XT DOCUMENT, as another data element, and/or with the 

i Wussss^ss^s^ r oriM ^^ 111 eadi ^ a user 

1 ^_ • .. . , c , . . , . . ,. , communicates with an authorization server to license a 

electronic or digUal file that n constructed jiccording to the ^ ^ user>s £ or location are recorded 

invention by packaging the electronic media into a secure ,«. „ . „. , '. ' 
j .x . , .. , is and stored therein, 

document format to manage or otherwise enable the control, 

access, and/or licensing of the media. Accordingly, the invention provides several advantages in 

The invention provides for the secure electronic copyright * e ^f*™*™ and *<"f S of copyright clearances for both 
management and automatic identification of ownership rf ^J^,!?? "^JT^ of 
creative works distributed as digital or electronic media, 7n "f*?- . UnUke me "f* 0 * 111 / nor 1,16 method 

particularly over computer networks. Briefly, one aspect of ™ °! ^ 00 "P^ 1 ta ™ a * d f abes to .P»««* C0 Pr 
the invention provides a system which packages electronic "& bted u w ^ fte ^^'Z^T* 
media into a secure document format (hereinafter *" ou & !* lec * rome 'J^^ .DOCU^ format and sys- 
"DOCUMENT"), including a data container for the media ^>«i^^^^^?^^m^t«t^ 
andannniimmiperrmssionTdata set to specify the minimum „ and ownerslup protection; and for (2) automatic manage- 
aumorizationsneededtovieworotherwteeaccessthemedia. 25 m ^ «f including the controUed access to 

The DOCUMENT can also include a document header, a media * ""J*"** work ?- Spccatolly. the system of the 
document identifier, a source works extensions module Ca ?* tt permissions to a 

which maintains a bibliographical history of the media, and ™^^ U £ I? 510 ' ° f ^ ^ /"J* 6 * 115 a 
a digital signature to authenticate the media. The DOCU- 30 DOCW^ttas^^ 

MENT and the associated network-based tools, described " u$ . c ". The DOCUMENT creator or aumor determines these 
below and constructed according to the invention, enable the nammaia P™**™ » V** <* J™ use, and the 
attachment of minimum permissions to copyrighted works fusions "» « subsequently updated to an auxil- 
and the subsequent on-line licensing of the media. Jf? P*™*™™ through on-kne licensing should 

w . . . . . _ „ . the user be interested in more advanced licensing or uses of 

More particularly, and in another aspect of the invention, 35 ^ med £ a 

the DOCUMENT containing the media is registered on a 

registration server and licensed through an authorization 10 other as Pects, the invention provides an encrypted 
server. Potential licensees view the DOCUMENT through electronic signature and optional data encryption, to enhance 
the authorizations within the minimum permissions data set, or 8 uaraDtee ^ authenticity of the entire work, including 
and communicate with the authorization server, if desired, to «, authorshi P* More Particularly, in other aspects, the DOCU- 
obtain a license to the media. Once licensed, the licensee can MENT encapsulates the required data in a secure fashion 
utilize the media in accord with an auxiliary permissions usin & encryption; and the digital signatures are based on 
data set that is assigned to the DOCUMENT during the message digests resulting from one-way hash functions, 
on-line licensing transaction. In still other aspects, the system of the invention utilizes 

Subsequent viewers and/or users of the DOCUMENT 45 client/server system architecture based upon the TCP/IP 
also communicate with the authorization server. Thus, in network protocol standard. Those skilled in the art will 
another aspect, the invention provides for the licensing of appreciate that other network protocol standards can be used 
the media to creators of derivative works, i.e., those who without departing from the scope of the invention, 
modify an original work of authorship and who obtain ^ accord with further aspects of the invention, users can 
authorization to do so through an augmentation in the 50 unpackage or unwrap DOCUMENTS through a controlled 
permissions data set As above, the modified DOCUMENT environment, specifically from within a compatible appli- 
is then registered on a registration server and licensed cation or program extension, i.e., a Plug-in, which can 
through an authorization server. The DOCUMENT in this provide the requisite controls over document use. 
aspect preferably includes a sourceworks extension module The invention also provides a set of easy-to-use network- 
which records the original and derivative authorship of the 55 based tools for registering and adniinistering copyrights of 
media. By retaining such information, a copyright "family electronic creative works. In one aspect, for example, a 
tree" or electronic bibliographic record is maintained for the viewing module is provided to view and edit media- 
media. Preferably, the authorship information in the source- packaged graphic, image, video, audio, and textual objects, 
works extensions is resident as a data element within the This viewing module, referred to herein as a 'VIEWER," is 
DOCUMENT. However, the sourceworks extensions can 60 generally required for viewing and editing DOCUMENTS, 
also be maintained on or through the authorization servers, in still another aspect, a packaging module is provided to 
depending upon the number of servers used in the registra- encapsulate a newly created work in a secure, digitally- 
tion of derivative uses of the media. formatted package— i.e., a DOCUMENT. The packaging 

Like the sourceworks extensions, the invention can also module, referred to herein as a "PACKAGER," is partial- 
record any and all users who access the media. In accord 65 larly useful to authors, creators and publishers who seek to 
with this aspect, the DOCUMENT includes a usage module secure their copyrighted works and who seek to encapsulate 
which records selected information about each user who other information with the works, such as authorship, 
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ownership, minimum permissions, and source works exten- In accord with other aspects of the invention, the 

sions. Accordingly, a user of the PACKAGER can selec- VIEWER provides standardized tools and procedures for 

tively package such information with the media to formulate obtaining a certified digital identification of a DOCUMENT, 

a DOCUMENT. and for becoming a licensed user to that DOCUMENT. 

In other aspects, a registration server provides registration 5 In another aspect of the invention, a PACKAGER encap- 

and authorization services on a platform such as Windows sulates authorship, ownership, minimum use permissions, 

NT or Unix. The registration server is used by information source works information and the associated creative works 

creators who want users of their works to easily identify in a secure package. The PACKAGER has several aspects, 

ownership and potential licensing terms, and to transact and including: 

license those works on-line. The Authorization server, on the *0 xhrough the PACKAGER, a user can display the status of 

other hand is used by information creators and users to permissions for each source work, obtain authorship, 

obtain access to creative works and to license those works ownership, and licensing information from the source 

for their own use. Typically, in accord with another aspect work's registration server, and selectively obtain auxiliary 

the registration server for each DOCUMENT operates as the permissions as required for each source work. 

aU& u°^^Vr^° r ^ SUbSCqUem UcenSin8 tranSaCti ° DS 15 The PACKAGER allows the author to check clearances 

to that DOCUMENT. * « e -i • a «. 

for all sources of a work in progress and to engage in 

The invention provides certain other advantages over the VIEWER-Iike licensing transactions to obtain or upgrade 

prior art in that creators and publishers of electronic media auxiliary permissions. 

have direct control of the copyrights they hold through the ™« mm/Anon n ^ ^, . .~ . . .., 

c *u ^ a T7.-u *i. 20 The PACKAGER allows the author to verify and modify 

use of authorization and registration servers. Further, the M A1 _ . r ^ A . . . . 4 , ... ' . * 

. . r . , «jui ... i * . the information that is encapsulated with the packaged 

invention is preferably compatible with widely accepted . nrvnr*rpxrr r 

object technology standards, e.g., OLE and OpenDoc, to mema m a ULM - UJVU±m - 

ensure compliance with the widest possible range of appli- Registration is the final step in setting up a DOCUMENT 

cations and on several platforms. in accoid ^ invention; and the PACKAGER provides 

The invention also provides for automated and controlled 25 J^*^*** ^ a neW 

network-based copyright management. The registration m 

server can be scaled to fit the needs of any authorization and VIEWER, the PACKAGER provides standard- 
registration service, from single-author shops to massive ized tools ** d procedures for obtaining a certified digital 
centralized clearinghouses. identification and for becoming an authorized user. 

In still another aspect the VIEWER provides a mecha- 30 311 another of ^ invention, a Software Develop- 

nism for users to gain access to copyrighted DOCUMENTS. ment Mt ( SDK > is P r °vided to enable developers of multi- 

Specifically, the VIEWER in this aspect ensures that opera- media applications, games, or multimedia authoring tools 

tions performed on media-packaged data objects are in (including applications for content creation) to incorporate 

compliance with the permissions that have been granted to „ VIEWER and PACKAGER functionality into their applica- 

the user. Uons - 

In other aspects, a user can transact a license to the ^ invention thus facilitates the management of copy- 

DOCUMENT through the VIEWER and the on-line com- ri g hted works and ensures media Packaged within a 

municationswith the authorization server. More particularly, DOCUMENT is authentic. The invention further enables the 

the VIEWER in this aspect (i) generates a licensing request 40 Packaging of useful and selective information with the 

signal in response to inputs by the user, and (ii) communi- work > such 35 document identification, ownership, 

cates that signal to the authorization server assigned to that permissions, and sourceworks extensions. These features are 

DOCUMENT. This request, sometimes denoted herein as a Provided, at least in part, by the VIEWER, PACKAGER and 

"License Request," provides an entry point for on-line registratioii/autharizaUon server. Through the registration 

licensing of media-packaged works. In this way, a success- 45 scrver > for cxam P le > information providers of any size can 

fully licensed user can obtain auxiliary permissions to the take ad van ^g e of rights management for their creative 

DOCUMENT of interest, thereby extending the set of opera- works ' and uscrs on a network connected to the server enjoy 

tions which the user may perform for a given work. easv , and secure °n-Une licensing of the works managed 

In still other aspects, the VIEWER operates to display therem * 

selected registry information about the DOCUMENT. This 50 111 accord Wlth a preferred aspect of the invention, the 

display, sometimes denoted herein as the "Registry Inf or- VIEWER and PACKAGER do not impose perceivable over- 

mation Display," provides information such as authorship, hcad dunn S con^e of normal rendering or editing of the 

ownership, and the licensing terms associated with the worL The execution of VIEWER and PACKAGER func- 

electronic media, thereby facilitating the user' s review and tionality is quick to ensure that network functions have good 

evaluation of the DOCUMENT prior to licensing. The 55 performance within the available network bandwidth, 

registry information is preferably stored in the DOCU- 10 still other aspects of the invention, VIEWER, 

MENT itself, and/or at the DOCUMENT'S registration PACKAGER, Registration Server Modules and Authoriza- 

server. don Server Modules are operable on Win95, Windows NT, 

A record of the media source works is also available MacOS and Unix-based platforms, 

through the VIEWER, in accord with another aspect of the 60 In other aspects, the VIEWER and PACKAGER of the 

invention. As discussed above, the sourceworks extensions invention operate in conjunction with OLE and OpenDoc. 

provide a bibliography of the authors of the media so that the The invention also provides a system for authorizing 

appropriate authors are credited with their works even after access to copyrighted electronic media. An authorization 

the works are edited by a derivative author. The sourceworks server is connected for data transfer between an internal 

extensions are typically available within a. display — 65 memory and at least one external data processor, and an 

sometimes denoted herein as the "Source Works Display — internal storage stores selected information about the elec- 

at the user's computer terminal tronic media, e.g., the licensing terms for gaining auxiliary 
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permissions to the media, the copyright ownership of the ated or modified the media, (iii) a software module inte- 

media, and revenue estimates about the media. A relay grated into an application environment by way of a source 

section that is responsive to a request signal by the data code library or linkable object code performing substantially 

processor communicates the selected information to the data similar functions. 

processor. A data comparison section receives response 5 Although other communication protocols arc suitable for 

signals from the data processor and compares the selected the invention, cornmunication standards based upon the 

information with the response signals. In this way, the data TCP/IP network protocol are preferred, 

comparison section generates an acceptance signal when the ^ provides methods for authorizing data 

response .sxgnals correspond to at least a part of the selected transfers of copyright mgital media, including: am^ng 

mfonna^ 10 co ^ x . s ^^^ sion & Mo ^ n to ^ ^dia, J 

data processor to authorize access to the media. permission information specifying actions which are 

The system can also store the media within a storage restricted and which require augmented access privileges to 

memory, in another aspect This memory can be within a perform; storing selected information about the electronic 

computer connected for electronic data transfer with the data media on an authorization server connected for data transfer 

processor, whereby the computer is responsive to the accep- ™ with at least one computer; electronically communicating 

tance signal to transfer either (1) authorizations to access the selected information about the media to the computer; 

media or (2) the media to the data processor. receiving response signals from the computer and compar- 

The system preferably includes a process section for ing the selected information with the response signals; and 

tagging an encrypted digital signature to the media, thus generating an acceptance signal when the response signals 

authenticating the media. Another section— including a 20 correspond to at least a part of the selected information, 

source works extension module— can also be included to thereby authorizing access to the media, 

append a bibliographic record to the media, the biblio- The invention also provides for optional encryption of the 

graphic record forming a digital representation that specifies data within the secure container. Accordingly, the methods 

information that references each source work and access of Ae mvenuon indude, fcj example, the step of encrypting 

restrictions associated with the source work. 25 the media through an RSA public key algorithm 

The system can further include a section for appending The method of this aspect can also include the step of 

auxiliary permissions to the media, the auxiliary permissions communicating a digital representation of at least one of (i) 

forming a digital representation that specifies an authorized a copyright ownership of the media, (ii) a set of licensing 

use of the media, such as viewing, copying or editing the M terms for me media for different user classifications, and (iii) 

media- revenue estimates about the media. 

In yet another aspect, the system includes an access In another aspect of the invention, a method is provided 

control section for withholding access authorization to a for maintaining an electronic bibliographic record of digital 

portion of the media, the access control section thus being media, including: opening an object container containing the 

responsive to the acceptance signal to remove access restric- 35 digital media, the object container including a representation 

tions to the portion. In this way, permissions and access to of the media, a data identifier of media, and data specifying 

copyrighted media can be provided to specified parts of a minimum permissions required to access the media; editing 

complex multimedia object, eg. , one which includes written the digital media in an application environment; and attach- 

text, graphics and sounds. ing the data identifier and rninimum permissions data to the 

The invention further provides a system which controls 40 edited media into a source works list The source works list 

selective access to electronic media. The system includes provides, among omer information, a bibliographic record of 

one or more servers that communicate via a data transfer link the authorship represented in the media, 

between an associated system memory containing the media Such a method can also include the steps of unencrypting 

and at least one external data processor. A communication the media, and encrypting the media after attaching the data 

section communicates content-specific permission informa- 45 identifier and permissions data into the source works list, 

tion about the media to the data processor, the permission A method of the invention also includes a process for 

information specirying data processor actions which are determining the authenticity of digital media, including the 

restricted and which require augmented access privileges to step of affixing an encrypted digital signature to the media, 

perform A storage section enables the storage of selected In this aspect, the DOCUMENT is authenticated by encod- 

other information about the media; while a relay section, 50 ing a signature representing the registration of the media. By 

responsive to a request signal by the data processor, com- way of example, a private key is resident with the regis tra- 

municates the other information to the data processor. A data tion server which is under strict control of the system. The 

comparison section receives response signals from the data authenticity— in this example— is thus granted by the reg- 

processor and compares the other information with the istration server and proven by the digital signature in the 

response signals, the data comparison section generating an 55 DOCUMENT. Alternatively, in another example, the private 

acceptance signal when the response signals correspond to at key is provided to the user of a particular application, again 

least a part of the other informatioiL An access section under the tight control of the system, 

restricts data transfers ■ between the data processor and a yet another aspect, a computer network is provided for 

portion of the media, the access section being responsive to managing original works of authorship, including: a process 

the acceptance signal to remove data transfer restrictions actuation section for affixing copyright information to a 

between the data processor and the portion within the system binary data element corresponding to an authored media; a 

memory. process actuation section for affixing minimum permission 

The communication section of this aspect can include one information to the data element, the permission information 

of (i) a stand-alone software module, (ii) a plug-in software specifying access restrictions to the data element; a server 

module corresponding to an application environment that 65 for storing information concerning the rights to the media, 

generated or modified the media, (iii) a program extension the server including a control module for controlling access 

corresponding to an application environment which gener- to the data element according to the minimum permission 
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information by restricting data transfers between the server 
and one or more computers networked with the server, a 
process section for tagging the data element with supple- 
mental information; and a process section for maintaining 
copyright information through derivative uses of data ele- 
ment throughout the network. 

The invention also provides a PACKAGER, which is a 
system for packaging electronic media within a secure 
electronic container. The PACKAGER includes a first pro- 
cess section for attaching a data identifier to the media; and 
a second process section for attaching minimum permissions 
data to the encrypted media, the minimum permissions data 
specifying minimum acceptance terms required to electroni- 
cally access the media. 

In other aspects, the PACKAGER includes a process 
actuation section for attaching a digital signature to the 
media, the digital signature providing an authentication to 
the media; and a process actuation section for affixing source 
works extensions to the media, the source works extensions 
specifying a bibliographic record of the media. This biblio- 
graphic record is a digital representation that specifies 
bibliographic information about the authors and minimum 
permissions of the media, thereby providing persistence 
through generations of derivative use of the media. 

A VIEWER system is also provided for unpackaging 
electronic media configured within a secure electronic con- 
tainer. A first process actuation section recognizing permis- 
sions data attached to the media, the permissions data 
specifying one or more authorizations needed to electroni- 
cally access the media; and a second process actuation 
section opens the media when a user has the authorizations 
corresponding to the permissions data. 

In other aspects, the system includes a communication 
section that engages an authorization server when the user 
does not have the requisite minimum authorizations of the 
permissions data set; or when a user desires to augment the 
permissions to a particular media by transacting a license to 
that media. The communication section thus includes a 
process section for transmitting transactional information to 
the server, and for receiving, from the server, auxiliary 
permission to utilize the media. 

The methods of the invention can include the steps of 
encrypting the media, and/or transferring the container to the 
data processor via one of point-to-point email, CD-ROM, 
ftp, gopher, smtp (email), and http (World Wide Web). In one 
aspect of the invention, for example, the registration server 
first authorizes a user with a PACKAGER through log-in 
process to establish a secure line, such as known in the art. 
The user and PACKAGER then generate the registration 
information relating to the particular DOCUMENT, and 
transmit the information and a message digest to the regis- 
tration server. Upon receipt, the registration server returns a 
'registration certificate," in digital form, that is signed by the 
server's private key. The registration server's public key is 
widely known, so that the registration server can operate as 
a certification authority for the packaged-media. The regis- 
tration certificate is then passed through secure channels, 
and the PACKAGER attaches the digital signature to the 
DOCUMENT. Accordingly, authenticity is demonstrated to 
anyone with a VIEWER or PACKAGER that has access to 
the DOCUMENT. 

In an alternative aspect, if the communication channel is 
unsecured, the registration certificate is encrypted via public 
key to the user's public key. 

These and other aspects and advantages of the invention 
are evident in the description which follows and in the 
accompanying drawings. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 illustrates one system, constructed according to the 
invention, for managing copyrighted works formed as 
DOCUMENTS; 

FIG. 1A illustrates a schematic view of one DOCUMENT 
constructed according to the invention; 

FIG. 2 shows a schematic illustration of a VIEWER 
system, constructed according to the invention, and which is 
io suitable for viewing selected information within a DOCU- 
MENT such as illustrated in FIG. 1A; 

FIG. 3 shows a schematic illustration of a PACKAGER 
system, constructed according to the invention, and which is 
suitable for encapsulating electronic media within a DOCU- 
15 MENT such as illustrated in FIG. 1A; 

FIG. 4 illustrates a schematic diagram of a system which 
is constructed according to the invention and which provides 
for managing copyrighted electronic media assets; 
2Q FIG. 5 shows one illustrated use of the invention in the 
management of copyrighted GIF files; 

FIGS. 5c and 56 show illustrative dialog boxes displayed 
to a user of the system of FIG. 5; 

FIG. 6 shows a computer network constructed according 
25 to the invention and which illustrates selected operational 
uses of the invention; 

FIGS. 7-7/r show illustrative computer displays for use 
with a system constructed according to the invention, such 
as the network of FIG. 6; 
30 FIG. 8 illustrates one acceptable process flow for provid- 
ing copyright management according to the invention; and 

FIG. 9 schematically shows a system, constructed accord- 
ing to the invention, and which illustrates selective opera- 
35 tions of a VIEWER, PACKAGER and registration/ 
authorization server. 

DETAILED DESCRIPTION OF THE 
INVENTION 

40 FIG. 1A illustrates a system 10, constructed according to 
the invention, whereby DOCUMENTS 12a, Mb are created 
and packaged, and then registered on associated registration 
servers 14a, 146, respectively. Users 16a, 166 and 16c are 
connected for data transfers with one or more of the autho- 

45 rization servers 18a, 186, such as through a computer • 
network or the Internet. 

The illustrated DOCUMENTS 12a, and 126 are created as 
copyrighted media by author 19 and user 16a, a derivative 
author of the work 12a. For example, media 13 is represen- 

50 tative of original work of authorship. Thereafter, the DOCU- 
MENTS 12a, 12b are packaged as a data container, accord- 
ing to the systems and methods described herein, and as 
denoted by the copyrighted © symbol marked over the 
media. These packaged DOCUMENTS 12a, 12b are regis- 

55 tered on servers 14a, 146, respectively, and are made avail- 
able for license through authorization servers 18a, 186. A 
single server can operate as both the registration server and 
authorization server. 
In operation, the DOCUMENTS 12a, 126 are available for 

60 limited free use according to the minimum permissions data 
set assigned to each DOCUMENT. Typically, the minimum 
permissions allow users with access to the DOCUMENT to 
view the DOCUMENT, but not to save or otherwise transfer 
the DOCUMENT without first obtaining, auxiliary perrnis- 

65 sion from the DOCUMENT'S authorization server. As 
illustrated, for example, users 16a, 166 each have access to 
DOCUMENT 12a and may therefore freely read or view the 
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contents of the media within DOCUMENT 12a at their Works Extensions 24 can include any of the Source Works 

associated personal computers 17a, 17b, respectively. If, Extension Code, the Document ID. and the Permissions 

however, the users 16a, 16b attempt to act on the DOCU- mask. If demanded by the licensor of the work, or desired by 

MENT 12a in a manner which is not in accordance with the the licensee, the Document ID and the applicable permis- 

permissions they hold, they are automatically prompted to 5 sions mask (the set of relevant use permissions) for the 

obtain a license to the DOCUMENT 12a. The licensing source work are included in the derivative work. In accord 

transaction occurs through the authorization server 18a, with the preferred use of the invention, the Source Works 

which connects and communicates with the users 16a, 16b Extensions 24 are encrypted; and any number of Source 

through personal computers 17a, lib. Alternatively, the Works Extensions 24 may be included in a DOCUMENT 20. 

users 16a, 16b may. if desired, initiate a licensing transaction 10 For example, information about successive derivative 

with the server 18a if they know, for example, that their authors of the DOCUMENT 20 are stored sequentially as a 

permissions are insufficient to access the DOCUMENT 12a Source Works Extension 24. By way of another example, 

in the desired way. one Source Work Extension 24 can include the release 

Once licensed to the DOCUMENT 12a, the licensed user information for any performer whose image or audio like- 
has augmented auxiliary permissions to utilize the DOCU- 15 ne ss appears in the current DOCUMENT. 
MENT in some other way, such as saving and/or modifying The Source Works Extensions preferably operates to 
the DOCUMENT.- Similarly, user 16c is connected via protect the source works author, even at the risk of burden- 
computer 17c to the authorization server lSb, and may ing the derivative author and/or developer. Authors can 
therefore view and, if desired, license DOCUMENT 12b require that their work is included as a source works 
through server ISb. The format of DOCUMENTS 12a, 12f> 20 extension in a derivative work, or they can leave this choice 
are described in more detail in connection with FIG. 1A. to the editor or derivative developer. Authors can also 

DOCUMENT 20 of FIG. 1A provides a secure container request that their source works are not displayed. For 

for electronic media, including heterogeneous multimedia example, they may require the derivative developer to go 

data types such as musical scores coupled with graphical through the authorization process again to obtain permis- 

images. More particularly, the DOCUMENT 20 provides a 25 sions ^4 to include information regarding the work, 

package that encapsulates binary data objects, shown as the The Minimum Permissions 25 includes a permissions 

data container 23. and can contain some or all of the data set that are distributed with all authentic copies of the 

illustrated data components 21, 22, 24, 25 and 26. DOCUMENT 20. These permissions affect the ininimum 

In FIG. 1A, the Document Header 21 contains basic use of me data within the Data Container 23 in cases where 

information about the DOCUMENT 20, including, without an on-line licensing transaction has not yet taken place. The 

limitation, information such as a unique file format Minimum Permissions 25 thus uphold the spirit of the fair 

identifier, a format revision code, a document creator appli- use doctrine of copyrighted works ; and the careful setting of 

cation type, a file type (typically the MIME type code) of the the minimum permissions data set by the authors) or 

enclosed data, a comment field length, and a comment field. 35 creators) of the media ensures easy access and limited free 

typically up to about 256 characters. The information within use of the media up to the minimum authorized permissions 

Document Header 21 is generally not encrypted. set forth in the Minimum Permissions 20. This free use 

The Document Identifier 22 uniquely identifies the through minimum permissions is made possible by viewing 

DOCUMENT 20 by the registration server upon which the the DOCUMENT 20 through a VIEWER, constructed 

DOCUMENT has been registered, and the DOCUMENT'S ^ accordi ng to the invention and described in more detail 

registration or index number on that server. This registration below, which is widely distributed to potential users of the 

code typically contains the server name and registration DOCUMENT 20. 

index. A registration server cross-reference table, working in Minimum permissions 25 are superseded by auxiliary 

conjunction with the Internet's Domain Name Service permissions which are assigned to the DOCUMENT 20 

(DNS), is used to find the actual network address (typically 45 during an on-line licensing transaction. Auxiliary permis- 

a TCP/TP address) of the registration server. In one example, sions are preferably contained in secure License Certificate 

a unique server code may indicate local registration, usually documents provided by the Registration Server and 

indicating a work in progress. In another example, an author encrypted to the licensee's key. 

logged onto a computer, such as the author 20 of FIG. 1, and In accord with the preferred einbodiment of the invention, 

actively generating a copyright work in progress, e.g., a 50 an encrypted Digital Signature 26 is also part of the DOCU- 

novel in Microsoft Word™, will update and store the work MENT 20, to facilitate authentication. While only the Sig- 

on the local computer. In one embodiment of the invention, nature 26 needs to be encrypted to ensure the authenticity 

a work in progress is a locally accessible file which has not and integrity of the DOCUMENT 20, encryption of the bulk 

been authenticated through the registration process. . data 23 is also preferred since this guarantees a high level of 

The Data Container 23 contains the information repre- 55 security, 

senting the electronic media, typically in an original file Those skilled in the art will appreciate that other orderings 

format If desired by the author, this data can be secured of the information within the DOCUMENT 20 are possible, 

through encryption, such as through secret or public key including one where the Data Container 23 is last 

methods known in the art The data within the Container 23 in accord with the preferred embodiment of the invention, 

can also be passed in the clear, i.e., unencrypted; but this m users can unpackage or unwrap the DOCUMENT 20 only 

reduces the control of the associated media. The fields through the controlled management of the copyrights asso- 

within the Data Container 23 can include the enclosed data dated with the DOCUMENT 20. Specifically, the DOCU- 

file, and can include the data container extension code, and MENT 20 is viewable through a system constructed accord- 

the data container size, among other information. fog to the invention and denoted herein as a "VIEWER." The 

The Source Works Extensions 24 provides a bibliographic 65 VIEWER is available in several formats to accommodate the 

record, or 'persistence,' of copyright uses through genera- differing types of media contained within the DOCUMENT, 

tions of derivative work. The data fields within the Sources By way of example, documents formatted like the DOCU- 
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MENT 20 of FIG. 1A can be opened and manipulated on the registration server upon which the DOCUMENT 36 is 

compatible applications such as: registered, so that appropriate on-line licensing transactions 

Stand-alone VIEWER applications which allow viewing can 000111 with mc appropriate location. Process actuator 32c 

of the media and of the networked licensing and registration interprets— and sometimes decrypts— the data formulating 

information. 5 ^ c wz&a. 38, so that the user can view the media 38 to 

- ..J ... . „ rt¥ A , _ evaluate whether to engage in a licensing transaction. The 

Applications which are fully OLEcomrW a^d where ^ actuator 32c rmnimum access to the media 

^™ nS VIEWER and PACK- ^ ^ accord with th^minimum permissions data set which 

AGER reside on the system. is ^0^^ ^th me DOCUMENT 36 and which is loaded 

Applications for which VIEWER extensions or plug-ins and interpreted by the actuator 32d. Process actuator 32c 

may be available, so that user's of applications such as 10 interprets selected information about the source works 

Adobe's Photoshop®, Premiere®, and Acrobat® can extensions associated with the DOCUMENT 36, while 

directly interface with DOCUMENTS. process actuator 32/ interprets information about the digital 

Applications with integrated kernel software encompass- signature associated with the DOCUMENT 36, thereby 

ing VTEWER-like functionality, such as for integration into providing a means to authenticate the media 38. 

World Wide Web software like Mosaic® and Netscape®. 15 Not all process actuators 32 are required in every 

The DOCUMENT 20 of FIG. 1A can also include infer- VIEWER, depending upon the form of the DOCUMENT 

mation about the successive users of the DOCUMENT. For ? 6 At a mmimum, however, the VIEWER ^must be able to 

example, the Source Works Extensions 24 can have an mX ^ rct ** A *** ™*? n DOCUMENT, induding, if 

appended data field or usage module which stores selected M ^ P \u^ ^^J^ IF 

informational*^ 20 mtn^ 

information can include, for example, the identity and/or V ? WER must DOCUMENT ' * minimum per- 

vou mviuwv, vi wvaiu^xs,, u Jt ii^uu^ auw vi missions as well as the connectivity information of the 

tocauon of the user. Alternatively, the usage information can DOCUMENT'S associated authorization or registration 

be stored at the associated authorization server during or in server . VIEWER will not however, typically permit 

connection with a licensing transaction to the DOCUMENT. ^ actions— such as copying and/or downloading of the 

In summary, the DOCUMENT format of FIG. 1A aug- media 38 to disk — without first obtaining auxiliary licensing 

ments the multimedia data content with supplementary permissions from the associated authorization server, as 

information which identifies, without limitation, some or all described in more detail below. The VIEWER thus provides 

of the following information: the source, registry, and format a minimum access to the data 38, such as viewing the media 

of the data; the copyright legacy of the data; minimum 30 contents on the user's display tenninal, thereby promoting 

permissions to use of the data prior to on-line licensing; a limited but fair use of the data 38. 

digital signature to prove authenticity of the data; and a use Similarly, electronic media is packaged into a format such 

record of the users who accessed the media. as the DOCUMENT 20 through a packager system con- 

FIG. 2 illustrates a VIEWER system 30 constructed structed according to the invention and denoted herein as a 

according to the invention and which is suitable for viewing 35 PACKAGER, such as illustrated in FIG. 3. The PACK- 

the DOCUMENT 20 illustrated in FIG. 1A. The VIEWER AGER system 40 of FIG. 3 is suitable for generating the 

30 includes a series of process actuators 32c ... 3^ each DOCUMENT 20 illustrated in FIG. LA. The PACKAGER 

of which decodes and/or interprets the several elements of 40 includes a series of process actuators 42a . . . 42/ each 

the DOCUMENT 20. The VIEWER 30 is connected for data of which operates to formulate one or mare of the elements 

transfer along data transfer line 34 to communicate and 40 of the DOCUMENT 20. FIG. 1A. The PACKAGER 40 is 

operate on the DOCUMENT 36, stored for example on a connected for data transfer along data transfer line 44 to 

server. The several process actuators 32 thereafter operate, communicate and operate on electronic media 46. The 

in combination, to enable viewing of the media within the several process actuators 42 thereafter operate in combina- 

DOCUMENT 36 and in accord with the minimum permis- tion to package or encapsulate the media 46 into a secure 

sions data set This media is illustrated in FIG. 2 as the data 45 DOCUMENT 48. For example, a user of the PACKAGER 

objects 38, which are, for example, displayed in a computer 40 is generally an author of copyrighted works, and one 

screen, through data transfer line 34a, so that a user can view process actuator is used to specify the minimum authorized 

the contents of the media data objects. use of the media within the minimum permissions data set 

The VIEWER 30 can be constructed as a printed circuit The resulting packaged media, illustrated in FIG. 3 as the 

board, application specific integrated circuit, a VLSI circuit, 50 DOCUMENT 48, is thereafter registered on a registration 

or as a software module resident within a computer and server, through data transfer line 44a, so that the DOCU- 

operable in connection with an internal microprocessor to MENT 48 is available for on-line licensing transactions by 

perform the various process actuator functions described any connected user having a VIEWER and connected to the 

below in connection with process actuators 32a . . . 32/ authorization server. 

Topically, the VIEWER 30 is connected for communication 55 By way of example, the PACKAGER 40 can be con- 
with a computer display so that once the DOCUMENT 36 structed as a printed circuit board, an application specific 
is unpackaged, the data objects 38 within the DOCUMENT integrated circuit, a VLSI circuit, or as software module 
36 are viewable to the user. resident within a computer and operable in connection with 
More particularly, the process actuator 32a interprets an internal microprocessor to perform the various process 
selected information about the document header, e.g., the 60 actuator functions described above in connection with pro- 
header 21 shown in FIG. 1A. This information can, for cess actuators 42a ... 42/: Typically, the PACKAGER 40 is 
example, include the type of file within the DOCUMENT connected for communication with a registration server so 
36, or a comment field specifying certain details about the that once the DOCUMENT 48 is packaged, the data objects 
media as described by the media's author. Process actuator 46 within the DOCUMENT 48 are available for license by 
32b, likewise, interprets selected information about the 65 any connected user. 

document identifier, e.g., the identifier 22 of FIG. 1A. Such . Sufficient information is packaged within the document 

identifier information includes, at least, a unique identifier of format to enable a potential licensee using the VIEWER to 
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engage in on-line licensing transactions to obtain, for authorization is required at execution time. Upon remote 

example, copyright ownership, licensing, and revenue infor- execution of the compiled multimedia program, a spectrum 

mation about the data, If the terms are acceptable, the of authorization schemes are possible, from free execution, 

potential licensee uses the VIEWER to obtain additional to the networked authorization of individual copyrighted 

permissions for derivative development or other use not 5 a ssets . The licensing functionality of the PACKAGER/ 

covered in the ininimum permissions data set This operation VIEWER kernel is applicable during execution as well as 

is described below in connection with FIGS. 4-6. durin 8 Faction. 

FIG. 4 illustrates a copyright management system SO F ^ ^^PT^- P*™ ? °' 

^nctmof^H a ^rH,-n« * rt tkZ L.ifi.oih, T7in a constructed according to the invention, which only manages 

conducted according to the invention. Specifically HG. 4 ^ ted Gw (^hfcs files) media. The GIF DOCU- 

mustrateshowco^ io M g^ 1 are aea ^and/or modified through VIEWER 

^^lt H f environment using the described PAC KAGER systems, such as described herein, and 

DOCUMENT format The media is first formulated as m ^oofr a registration serV er. FIG. 5 shows, in 

individual content elements 52 that are created and authored particular, initial document processing, use-based licensing, 

by media-specific tools, such as text editors, graphics tools, header and extension maintenance, source work copyright 

audio design tools, and digital video production tools. In the 15 c i earancC) i oca j remote server registration, and 

conventional production environment of the prior art, the encrypted file formatting. Preferably, the system 70 is based 

elements 52 would simply enter a multimedia asset library, on TCP/IP. 

ready for use in production. No copyright information The major functional sections of system 70 include open- 
whatsoever would typically be affixed to the data objects ing files of appropriate types, creating and modifying head- 
prior to archiving. 20 ers and extensions, providing permissions clearance for 
In system 50, on the other hand, content element-specific included sources works and attached performance releases, 
permissions are affixed to each data object 52 before passing and DOCUMENT formatting, encryption, and saving. Each 
on to the next level of production or on to archiving. In one of these sections is described below: 
embodiment of the invention, the system 50 incorporates a Opening Files 

PACKAGER 54 within a stand-alone application to affix 25 DOCUMENTS are loaded into the system 70 once pack- 
permissions and other related authorship information to the aged by a PACKAGER. For example, an original work 72 
data 52, such as described in connection with FIG. 3. created in an application environment is opened in that 
Alternatively, the PACKAGER 54 can be directly integrated environment and formatted by a PACKAGER into a DOCU- 
into the media-specific tools of the developers; and, as such, MENT 74. Alternatively, an existing DOCUMENT 76 can 
the PACKAGER 54 becomes a "plug-in" tool for commer- 30 be opened by a VIEWER, modified if desired, and stored as 
dally available graphics, video, and sound development a DOCUMENT 74. 

applications based on the PACKAGER software kernel. More particularly, media is opened and available to the 

After packaging by the PACKAGER 54, the heteroge- user through a combination of the application which created 

neous content elements 56 are registered on a registration 35 the media and a VIEWER. In the case of raw GIF files, the 

server 58, and, for example, released to the production images are displayed and a header editing dialog box 

library. During this stage of production, a multimedia appears to the creator, such as shown in FIG. 5a, indicating 

authoring or scripting environment can be used to create an that the system 70 is ready to start the formatting process, 

interactive multimedia program which is a composite of For DOCUMENT-formatted files, a dialog box appears 

these archived elements 56. The control characteristics and 4Q listing basic information for the main file, such as shown in 

asset utilization of the program embodied in the control FIG. 5b; and similar information is listed in a scrolling 

"script" may also have an affixed permissions header. Thus window for each of the Source Works, 

all of the component assets will be protected in a similar The DOCUMENTS minim um permissions (obtainable 

fashion. and resident, for example, within any DOCUMENT) and 

For derivative uses of packaged DOCUMENTS such as 45 any auxiliary permissions (obtained from an authorization 

the packaged elements 60 of FIG. 4, a VIEWER and server during a licensing transaction) will dictate how the 

PACKAGER 62 can be utilized as a plug-in to the associated opened file may be used. To encourage browsing and fair use 

application software which generated the media of DOCU- of DOCUMENT-formatted works, the publicly distributed 

MENT 60 in the first place, so that editing and saving of the DOCUMENT files will typically have sufficient minimum 

DOCUMENT can occur. Such modifications and saving 50 permissions to allow local viewing, at least, and sometimes 

correspond to a "derivative use," as described herein. Once unlimited local derivative use. Publicly-distributed files 

the works 60 are modified and packaged into a derivative which allow local viewing can be opened within the 

DOCUMENT 64, including a Source Works Extension, they VIEWER; and files which require licensing to be opened, or 

too are registered on a registration server 58 (illustrated as working files which have not yet been publicly registered, 

a single server, for ease of illustration) for future licensing 35 must be opened with the user's key. 

transactions, and, for example, released to a production Publicly distributed files are registered on a registration 

library. server, and if encrypted, the key resident on the server is 

The system 50 thus provides an effective strategy far passed to the user via a secure channel. Some of these files 

managing both in-house and externally obtained copy- will require licensing at viewing time, meaning that auxil- 

righted assets. In accord with one embodiment of the 60 permissions must be obtained. The auxiliary permis- 

invention, a two-tiered rights clearing scheme is provided sions ^ es ^ or certificates, will be encrypted based upon the 

for multimedia program integration, in which both the registered user's key, as are works-in-progress (not 

encapsulated minimum permissions and the auxiliary per- registered, and possibly with incomplete sources works 

missions of all incorporated works are reverified prior to clearance). 

compilation. The specific content of this combination of 65 Creating & Modifying Headers & Extensions 

permissions, including the permissions introduced by the System 70 has several interfaces for creating or modifying 

creator of the composite work, will dictate what sort of the headers and extensions which embody the DOCUMENT 
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format. The Document Header, e.g.. the header 21 of FIG. encrypts the data therein. Exemplary encryption schemes 

1A. is primarily 4 derived from attributes of the enclosed according to the invention include, without limitation: 

media within the DOCUMENT. These attributes are dis- Encryption is initiated by the user, who also generates the 

played in the Doclnfo Editor and Viewer windows shown in secret key which is passed to the server, by secure means, 

FIG. So. The Document ID, e.g., the ID 22 of FIG. 1A, 5 and which becomes part of the registration record for that 

denotes the DOCUMENT'S registration server 78 and the work. Upon the grant of auxiliary permissions, the server 

index number of that DOCUMENT on that server. Non-local passes the key to the licensed user as part of the certificate, 

document IDs can only be assigned if there is a valid This is intended for publicly registered and distributed files, 

registration certificate associated with the file. Local Docu- and a DOCUMENT is not encrypted in this way without 
ment IDs are encrypted, but can only be changed by the 10 being registered first 

own f- Document I? maintenance is typically Encryption based on the author's key. All local works- 
handled through a computerized dialog box. in-progress maybe encrypted in this way, ensuring that local 
Permissions Clearance and Source Works use jj possible but unregistered public use is not 
For Source Works Extensions, e.g., the Extensions 24 of Encryption based on another user's key. This permits 
FIG. 1A. the Document ID informaUon is displayed in a 15 collaboration while protecting the collaborative work, 
scrolling view for the set of source works assodated with the witb fulther leferencc to FIG. 5, once a DOCUMENT 74 
current file. A dialog box allows the DOCUMENT IDs of is saved ^ tt ^ md on , server n ft be ^ 
additional works to be specified. Permissions information ai^^ Derivative users 80 can gain clearance to the 
can be obtained by double-clicking an entry on this list. A DOCUMENT 78 through a VIEWER in accord with the 
l! C ?, Qn ,r "5? ??. stta *° n s « ver . 78 1 f f me S0ltrce M minimum permission of the DOCUMENT and the auxiliary 
r^Tr^'rr? v ."JSfS * * 8 u appr T iate permissions from servers of all source works. The work 82 
DOCUMENT ID. Note that the user may choose to ignore represents dther WQrk k or publicly available 
clearances for locally-generated source works. work . ^ can be taaypte l as nerdn 

To enable permissions clearance for source works, public nG , 6 ai us&ate$ a computer network 90. constructed 

registration will not be permitted without proper source accordillg to me in Venti0Il( for managing copyrighted elec- 

works demon. This is ensured by the following: first, aoDic me<iia . ^ a &st kstancTXoriguial author 92 

system 70 will not allow on-hne i registration to take place erates and ^ ts dectronic „ such 

unless the permissions of the included source works (plus described m connection with FIG. 3. and registers the 

anyaux^ai7r^ssions)agreewtomeintendediiuiiin^ DOCUMENT 93 on registration server 94. Typically, the 

permssionsandinaximumucerc^^ author n enerates mc work „ on , * fa 

to be set at registration time. Secondly, the registration connected to the network via data transfer line 96. Once the 

server 78 will not allow registration unless it is proven that author 92 registers Me DOCUMENT 93, the server 94 

the source works are clear. Clearances are required for those becomes an authorization server for any subsequent access 

source works extensions with insufficient rronimumpermis- ^d/or licensing of the DOCUMENT 93 

aons for the intended distribution of the derivative work. t, , , ... „ . 

~. „„ ... . . . ... . . By way of example, user 96 has a VIEWER and is 

2SL?£?£ ^ iv °™ 1"°%"* V TTTf f connected to the^Xork 90 through communication line 

rrl^t r l transactions identical to „ The uscr H ^ ^ accesFtfae DOCUMENT 93 

U^^u^^^Z^LT ^TT *» authorization server 94 up to the minimum 

licensed maximum permissions, the Source Works Manager ^ nnrTnicxiT * 

^r- . . T - * . . 40 permissions data set forth in the DOCUMENT format 

Window displays those source works whose permissions tw^h,, fU . . . . V . . r~ 

* ,. %_ *w . . K . Typically, the minimum permissions permit viewing of the 

need upgrading. The user will then select each one individu- tvv^t t\x ttmt- wh„ ^;~™;t 0 -a/ 1/ • . 

«n„ iT.,--u t ■ _^ ^1 , IXX^UMENT, but do not permit saving and/or transmission 

h2STJ? T^T*- < ¥T? m of theI)OClJMENr.ShouldTe U ser S f desire.heor shecan 

teSEtaS. license the DOCUMENT through an on-line licensing trans- 

43 action with the authorization server 94 to obtain additional 

Private works, or works-in-progress. may not require authorizations-denoted herein as auxiliary permissions— 

registration, but any works which are to be publicly t0 use At meaia wimul me DOCUMENT for some other 

distributed— and, for example, encrypted using a secret us(!) e . g . t savmg or modifying the DOCUMENT, 

key-^rnust be registered. Users must therefore demonstrate similart a Derivative User/Author 100 of the DOCU- 

that all source works in system 70 have been cleared prior 5Q MENX ^ ^ and modify me contents of ^ D0CU - 

° * C 7 g ?? tM lf € T ^ SUCCC "f^' * C MEOT ^ &st auxiliary permissions to do so 

user of system 70 will receive an enc^pte^egistr^on ^oafr £ authorizat ion server 94. More particularly, the 

certrfica e ^which facilitate^ the savmg of the DOCUMENT autno f m ^ ^ ae docum^ v £ me 

m a publicty-viewable form. Smce relation and au&en- me mimmum ^ ^ rf me 

bcabon is based on a unique message digest for the file, if 5J DOCUMENT, then transacts alicense with the Authoriza- 

^^^^n^^ 10 ^^ 1 ^ tion S erver94toor^tt e auxiliaryperrmssio M .Theauthor 

^1^^,t l?^TL entryU,the reg,Stra - 100 is thus connected via data transfe line 102 to the server 

tton server Attabase must be updated. 94; and has a VIEWER and PACKAGER resident at his 

Encrypted date is preferably formatted with a secret key computer (note, for illustrative purposes, the Users and 

that is generated at the encryption event, and transported m Authors 100 and 120 of FIG. 6 are shown with limited 

using public key encryption. detail; and generally include a computer with VIEWERS 

Applications compatible with system 70 are preferably and/or PACKAGERS resident at the computer), 

based on TCP/IP, and therefore operate in the same manner Once the derivative user 100 modifies the DOCUMENT, 

as most popular Internet-compatible users. the DOCUMENT is registered on registration server 104 

Formatting, Encryption, & Savmg 6S through data transfer line 103, so that subsequent licensing 

A PACKAGER of system 70 saves files in the DOCU- can occur by users such as user 110. Note that user 110 must 

MENT format, such as described above, and preferably obtain licensing authorization from each server 104 and 94. 
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This process is done automatically at the user's computer the servers 92, 104; and (F) one SDK modul e res ident at 

terminal. The user 120 first accesses the modified DOCU- author 112 (typically, the SDK includes both a VIEWER and 

MENT through the network 90 and by connection with the PACKAGER). 

server 104 through data transfer line 105. Once the user 110 Those skilled in the art should appreciate that FIG. 6 is 

views the modified DOCUMENT through the VIEWER, she 5 illustrative only, and that many other configurations of a 

can seek auxiliary permissions to use the data far her computer network are possible within the scope of the 

intended use. Such auxiliary permissions are obtained by invention. For example, the network 90 can include a 

connecting to each of the servers 94 and 104 through data multitude of registration and authorization servers; and any 

transfer lines 107 and 105, respectively. connected computer which houses the VIEWER system can 

_ . , . , n access media on the network up to the minimum permissions 

Derivative author 112, connect^ tothe server 104 via w authorized by me m ^ mum permissions data set within the 
data transfer line 114, operates a VIEWER and PACKAGER DOCUMENT housing the respective media, 
in an SDK environment Briefly, the SDK indicates a "Soft- ^ sections bdow ^ mofe detail about ^ 
ware Development Kit" and enables developers of advanced invention, and include descriptive and operational commen- 
multimedia applications, games, or multimedia authoring tary 0 f fa c VIEWER, sourceworks information, User Reg- 
tools (including content creation applications) to incorporate « istration & Certification, the PACKAGER, SDKs, registra- 
Viewer and Packager functionality into their applications in tion servers , and authorization servers, among others, 
advanced ways. The SDK is appropriate, for example, when VIEWERS 

conventional OLE 2.0 compliance does not deliver the ~~ tttttwot nnA * 

^ . *l * *t_ T«r j j a The VIEWER allows viewing and editing oi graphic, 

functionality or performance Oat the ISV dernands. As ^ textu / objects fdiged 

above,tte aufcor m edits an I aeates : multawdxa works 20 S DOCUMENT in accord with the invention. Where 

aodpackages them through the PACKAGER resident in the objects are individually packaged, viewing and editing will 

SDK to prov.de for relation and subsequent licensmg of ^ ^ ^ ^ * f ^ ^ appUc ation or 

wo designated viewer. Where objects are content elements 

To maintain the authorship of, and ownership to a DOCU- within a compound document in-place viewing and editing 

MENT within the network 90, sourceworks extensions are wlu be common, with m external window session being 

used. This extension can be resident within the optional. Data objects— i.e., media— that are packaged 

DOCUMENT, such as shown in FIG. 1A, so that the according to the invention can be dragged and dropped, for 

appropriate DOCUMENT authorship and/or ownership is example, between OLE 2.0-cornpliant applications such that 

recorded and stored in the appropriate data element within ^ att rib u t e information contained in the DOCUMENT 

the DOCUMENT. Alternatively, or concurrently, the source- remains intact during such an operation, 

works extension is stored on any and all of the servers 94 and ^ yjEWm is required for viewing and editing any 

104. In this way, the owner or authors of the DOCUMENT DOCUMENT. The PACKAGER is the complementary to 

canensurcpersistence^ the vj^wer and is required t0 j^ge media within a 

Further, use information can also be stored within the DOCUMENT, e.g., the DOCUMENT 20 of FIG. 1A. TVpi- 

sourceworks extension so that, for example, an owner of die ^ me PACKAGER is requircd to CTCatc derivative works 

server 94 or 104 can independenUy track the use of his or her from a DOCUMENT; but only the VIEWER is required by 

copyrighted works simply by downloading the information ^ yolopeis when ^ ni^um permissions of the source 

at the server 94 or 104. works do not rcquu - e clearance. This might be common for 

In general, each of the servers 94 t 104 are owned and ^ so-called "public domain" free use of works, 

operated independenUy from the other. By way of example, The VIEWER examines certain attribute information 

one typical owner of the server 94 is a multimedia house encapsulated with the data object in compliance with the 

which generates copyrighted works for sale and distribution. DOCUMENT format. Operations on the data object from 

Such an owner thus seeks to restrict access to the media to within the VIEWER or editor are restricted based on the 

authorized users, thereby protecting the copyright 45 miinmum permissions encapsulated with the data object and 

Each of the servers 94, 104 also provides selected use- any Auxiliary Permissions subsequently obtained for the 

base information about the DOCUMENTS registered and data object. By way of example, the "Document Info" 

licensed through the servers. Specifically, the selected use- window of FIG. 7 provides a local summary of the 

base information provides a way to assess charges to the document, including all available minimum and auxiliary 

owners of the servers for services rendered in connection 50 permissions. 

with the servers 94. 104. The use-base information is avail- The VIEWER also facilitates on-line bcensing of 

able by physically accessing the server 94, 104; but is more DOCUMENT-packaged works. Based on registration infor- 

conveniently obtained by phoning the server and download- mation encapsulated with the data, i.e., the Document ID, 

ing the information directly. This information is not avail- the VIEWER contacts the DOCUMENT'S Registration 

able for general users; but is typically available only to the 55 Server and initiates an authorization transaction. After the 

attministrator who set up the servers 94, 104 in the first user is authenticated (typically utilizing the user's RSA 

place. This administrator can, for example, receives fees digital signature, whereby the user's key is stamped by a 

from the respective owners of the servers 94, 104 as part of certification authority), the user uses a template-like inter- 

this arrangement face to request auxiliary permissions , such as shown in FIG. 

For example, such an administrator would make revenue 60 la. If the permissions request does not match the user's 

for several transactions and sales shown in FIG. 6, includ- requirements, the request may be edited, such as shown in 

ing: (A) registrations of DOCUMENTS on both registration FIG. lb. Based on the available Transaction Rules in the 

servers 94, 104; (B) one licensing transaction for auxiliary database for the user's classification, licensing terms are 

permissions for user 96; (C) two licensing transactions for presented to the user, such as shown in FIG. 7c. If the terms 

auxiliary permissions for user 110; (D) two PACKAGER 65 are accepted, a digital certificate is issued containing the 

modules resident at the computers of Author 92 and Deriva- auxiliary permissions for that specific derivative use and 

tive Author 100; (E) two registration modules to configure encrypted to that specific user. 
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The License Request window, such as shown in FIG. 7a, 
is the entry point for licensing transactions. The Registration 
Server is identified and the set of requested permissions is 
displayed. If the User recently attempted an unauthorized 
operation, the permissions displayed are those required by 5 
that operation. The user has the option to edit the request, 
such as shown in FIG. 7b, to proceed with the transaction, 
or to cancel out When the user has submitted the Request, 
a License Agreement exemplified in FIG. 7c, is returned to 
a display terminal at the VIEWER. This interface, such as 10 
shown in FIG. 7c, allows the user to verify the terms of the 
agreement and to agree to those terms. 

The VIEWER can be used to obtain extensive information 
about the authorship, ownership, and licensing terms of a 
creative work prior to any licensing transaction. This infor- 15 
mation may be a combination of data permanently encap- 
sulated with the object, including for example authorship 
and basic document information, and information stored on 
the registration server, including for example copyright 
ownership, licensing terms, royalty schedules, and other 20 
augmented document Information. FIG. 7d illustrates the 
typical information which is available from the Registration 
Server and which can be displayed in a Registry Info 
window. 

Source Works Information 25 
The VIEWER can also be used to obtain source works 
information for the media object. The Sources Works 
Display, for example and as shown in FIG. 7e, presents the 
electronic record of any work from which the current work 
is derived, and the available information about each of those 30 
works. 

User Registration & Certification 

Any user of a VIEWER or PACKAGER who wishes to 
engage in an on-line transaction typically presents an RSA- 35 
based, network-standard digital signature signed by a rec- 
ognized Certification Authority. Both VIEWERS and PACK- 
AGERS will thus contain RSA-based standardized 
procedures for creating and managing public/private key 
pairs, for engaging in certification transactions, and for ^ 
becoming registered users. The Certification Authorities 
require human intervention when authenticating an indi- 
vidual's personal information. When valid information is 
received, the individual's key is stamped with a unique code 
from the Certification Authority which recognizes its 45 
authenticity. This certification is apparent before anything is 
encrypted to that key, and is apparent when the key is used 
to verify a digital signature (which can only have been 
signed by the individual using the matching key). 

PACKAGER 50 

The PACKAGER is used by authors and publishers to 
encapsulate authorship, ownership, minimum use 
permissions, and source works information with a creative 
work and in a secure package. During this encapsulation, the 
original binary file format of the creative work is preserved. 55 
An object created by the PACKAGER can stand alone, or 
can be incorporated in a compound multimedia DOCU- 
MENT. The PACKAGER is required for any editing ses- 
sions which involve DOCUMENT-packaged works and 
which demand clearance for derivative use. go 

During an editing session, the PACKAGER maintains a 
list of all DOCUMENT-packaged source works, their mini- 
mum permissions, and any auxiliary permissions which 
have been granted to the current work in progress. The 
Source Works Manager window, such as shown in FIG. 7f, 65 
allows the developer to easily see the status of permissions 
for each work, to obtain detailed authorship, ownership, and 
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licensing information from the source work's registration 
server, and to selectively obtain auxiliary permissions as 
required for each source work. 

For example, the user can command the display of all 
DOCUMENT-packaged source works from the Source 
Works Manager window of FIG. 7/ For each individual 
source work, the user may review the minimum permissions 
and, if available, any auxiliary permissions which have been 
issued. If the user chooses to obtain auxiliary permissions or 
to upgrade the current set displayed, a Viewer-style licensing 
transaction is initiated with the source-work's registration 
server. 

Alternately, the PACKAGER can prompt the user to 
upgrade the permissions. This happen during the registration 
process in the following way: after preparing the DOCU- 
MENT data for the derivative work, including the requisite 
minimum permissions, the user executes a Check Clearance, 
wherein all accumulated permissions are checked against the 
minimum permissions which the developer intends to encap- 
sulate with the derivative work. All sourceworks with per- 
missions that are insufficient will be listed in the Clearance 
Status window. 

The Check Clearances function is also applied to the set 
of Transaction Rules which the developer intends to load on 
the Registration Server. The basic principle is that a deriva- 
tive work may not grant more rights to the use of a source 
work than what was available before the derivative work 
was created. 

Some of the DOCUMENT information which is encap- 
sulated with the data object by the PACKAGER is prepared 
from context automatically. Other information can or should 
be manually entered or selected by the user through the a 
dialog window such as the Doclnfo Editor Window of FIG. 
7g, such as: 

(1) Revision Number: The revision number identifies a 
version of the document format which the PACKAGER 
complies with. 

(2) Data Format and Creator Application: This provides 
the type of data contained within the DOCUMENT, and the 
application environment which created the DOCUMENT. 
Note, however, that these fields may have reduced function- 
ality when used, for example, with OpenDoc and OLE 2.0. 
In such a case, the Doclnfo Editor can display the 
information, but it does not need to be contained as a 
separate Doclnfo field if the Object Container can be inter- 
rogated for it 

(3) Minimum Permissions: As described above, the mini- 
mum permissions template provides a way for the user to 
generate the m inim um permissions that are encapsulated in 
the DOCUMENT. One acceptable set of permissions, such 
as shown in connection with the Minimum Permissions 
Editor window of FIG. 7h, includes: 

Opening/Viewing restricted 
Modifications restricted 
Drag & Drop restricted 
Printing restricted 
Format Changes restricted 
Saves restricted 

Registration of derivative works required 

Store Source Works Extensions on Registration Server 

Require Source Works Extensions 

Restrict Source Works Extensions 

(4) Source Works Extensions: The identification of source 
works extensions is managed by the Source Works Manager, 
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described, in part, in connection with FIG. If. The author of 
the works can also track unregistered or non-DOCUMENT- 
packaged source works using the Source Works Manager, 
which allows authorship and ownership information to be 
textually entered into the Registration Server's database 
when the derivative work is registered. When information or 
authorization is requested, only contact information will be 
provided. 

(5) Digital Signature: The Digital Signature provides 
authenticity and integrity of all information contained in the 
DOCUMENT. One secure way to do this is to attach a RSA 
digital signature to the DOCUMENT, which is provided by 
the registration server upon license. The author is a regis- 
tered user in this case, and the DOCUMENT is registered on 
a Registration Server. Appropriate evidence of certification 
and the DOCUMENT'S hash results are contained in the 
signature. 

The PACKAGER can also enable encryption of the media 
within a DOCUMENT. If an author chooses to encrypt the 
media, a random key for the media is generated; and during 
a secure registration transaction with the registration 
server — such as after a log-on and once the author proves 
she is authorized to use the server — the secret key is passed 
by either (i) a secure communication channel, or (ii) a 
certificate that is public-key encrypted to the user's key, so 
that only that user may use that issuance of the secret key. 
This encryption method provides for strong security since 
secret keys are randomly generated and are unique to a 
DOCUMENT; and the distribution of the key to the DOCU- 
MENT is handled by the server. 

Those skilled in the art will appreciated that other encryp- 
tion methods are suitable for use with the invention and 
without departing from the scope of the invention, 

SDKs 

As discussed above, the Software Development Kit (the 
SDK) enables developers of advanced multimedia 
applications, games, or multimedia authoring tools 
(including content creation applications) to incorporate 
VIEWER and PACKAGER functionality into their applica- 
tions in advanced ways. The SDK is appropriate, for 
example, when conventional OLE 2.0 compliance does not 
deliver the functionality or performance that the ISV 
demands. 

The VIEWERS and PACKAGERS of the invention oper- 
ate with most OLE 2.0- compliant content creation tools and 
with most tools that create compound works. The SDK 
permits the developers to follow their own coding standards 
but still take advantage of the invention. 

Registration Server 

The Registration Server of the invention contains the set 
of services used by information creators who want users of 
their works to be able to easily identify ownership, obtain 
licensing terms, and license those works on-line. The Autho- 
rization Server module is the set of services those informa- 
tion users (who may also be information creators) will use 
to obtain access to information and license those works. The 
Server maintains a database of registry information pertain- 
ing to creative works which rights-holders are making 
available for commerce. 

The process of initiating a database entry for a work is 
called Registration. The act of processing a user's request 
for augmented permissions is called Authorization or licens- 
ing. Before starting a transaction with the Server, the PACK- 
AGER does the following: 

Verify that the user is a registered user. It will look for the 
user's RSA key with a certification stamp from an approved 
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certification authority. Preferably, user registration capabili- 
ties are built into all VIEWERS and PACKAGERS. 

Ensure that the user completes the Transaction Rule 
Templates, used in designing the licensing rules far all 
5 available classes of users. This should be completed prior to 
contacting the Server because they determine whether suf- 
ficient clearances have been obtained. 

Ensures that the user completes the Ownership Informa- 
tion Template, which is the textual information that a user of 
10 the work would receive when using the VIEWER to obtain 
further ownership information, beyond what might be 
encapsulated in that package. 

Verifies that sufficient clearances (auxiliary permissions) 
for all source works used in the current work-in-progress are 
available to the PACKAGER. 

If the clearances are insufficient, the PACKAGER guides 
the user through the series of authorization transactions 
required to get the necessary permissions. 
20 When sourceworks clearances are complete, the PACK- 
AGER performs a one-way hash function contained, for 
example, in an RSA Digital Signature and which become 
part of the works' database record for later authentication. 

As a last step, the PACKAGER contacts the Server. 
25 The PACKAGER testifies to the Server that the user is 
authentic and that all sourceworks (if any) used in the work 
being registered have been properly cleared. The Server then 
assigns a unique registration ID to the DOCUMENT (based, 
for example, on the server's ID and the number of docu- 
30 ments registered on the server) and builds the database 
record based on the information held by the PACKAGER. 

In "signing" the DOCUMENT, the PACKAGER prefer- 
ably assembles a RSA Digital Signature for the package. 
35 Contained within the signature are the registration ID and 
the results of the one-way hash on the document data. The 
signature is encrypted to the User's key, thus demonstrating 
authenticity. 

Authorization Server Module 
40 Before starting a licensing transaction with the Authori- 
zation Server, the VIEWER does the following: 

Determines that available permissions (minimum and 
auxiliary) are not sufficient to perform the user's desired 
action. 

45 Verifies that the user is a registered, which is required only 
if a transaction with the Server is necessary. 

Testifies that the user is registered and presents the 
authorization request (a request for specific auxiliary 
permissions) to the Authorization Server. The user's classi- 
50 fication is also transferred and stamped with certification 
from the associated Certification Authority. 

Based on the requested auxiliary permissions and the 
classification of the user, the Server presents its terms far 
55 licensing. These terms are viewable within the VIEWER 
window and can include, without limitation, any of: 
Actual permissions granted 

Payment options. When a choice of on-line payment 

methods are available, a provider-specific window becomes 
6o available after the method is chosen. When some other 

method is required, an appropriate window to facilitate the 

payment is displayed. 
Request human intervention. The user or the Server may 

not be satisfied with an on-line authorization request. In that 
65 case, the option exists to pursue some form of human 

intervention. Hie options which the registering party has 

made available are displayed. 
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Accept terms. When the licensing terms are accepted, a to control the data processor's actions in accord with the 

packet enabling the auxiliary permissions is transferred to invention. A CD-ROM 224 drive is preferably connected to 

the VIEWER. These are encrypted to the user and thus are the user's computer 220 via data line 220d to facilitate 

non-transferable. access to CD-ROM files such as DOCUMENT 204c. 

The systems and methods of the invention encompass 5 Through the VIEWER 222, User 216 can access any of 

novel methods and tools which will enable creators of the DOCUMENTS 204^ up to the minimum permissions 

networked inultiniedia programs to identify their media and authorized by . each of the DOCUMENTS. By way of 

to claim foeirngh^^ example, the minimum permissions data set within each 

copynght^on^onwith the data element,, and by format- DOCUMENT typically authorizes the User 216 to view the 

ting the DOCUMENT in a manner which maintains this w DOCUMENTS 204a-*; but not to download modify, save 

identification and attribution so that it persists with the or otherwise electronically transfer the DOCUMENTS The 

copyrighted work through generations of derivative use. Hie data transfers required to access the DOCUMENTS 204^ 

invention therefore demonstrates the application of copy- up to the minimum permissions data set occur through 

right permissions to a hierarchy of network^distributed data communication line 218; while the only data transfers 

objects to effectively protect owners' rights. 15 required to access the DOCUMENT 204e up to its minimum 

This invention also facilitates the licensing of multimedia permissions data set are between the computer 220 and the 

content by different classes of users. In accord with the CD-ROM drive 224. 

invention, a desktop tool can be integrated with selected rf the User 216 wishes to augment the authorizations to 

viewing or production tools to feature an interactive licens- any of the DOCUMENTS 204; for example to modify or 

mg template. ^The invention thus demonstrates the integrated 20 save the DOCUMENT at the computeT 220 she must 

support of hierarchical permissions headers in the produc- communicate with the server 202 and transact a license with 

uon environment ^ and demonstrates networked interactive that server. The data processor 220 thus includes a commu- 

ucensing within the production environment based on hier- nication section 220b that is connected for data transfers, 

Passions, over communication line 226, with a compatible communi- 

FIG. 8 illustrates one acceptable process flow for man- 25 cation section 202a of the server 202. Upon selection by the 

aging copyrighted works in accord with the invention and User 216, the VIEWER 222 determines from the selected 

corresponding to the methods and systems described herein. DOCUMENT 204 that authorization server 202 is assigned 

FIG. 9 illustrates a system 200 constructed according to to handle all licenses to that DOCUMENT, and the 

the invention. The system 200 includes a server 202 which VIEWER controls the computer 220 to connect to the server 

operates as a registration and authorization server for any of 202 at the right address so that an on-line licensing trans- 

the DOCUMENTS 204c, 2046, 204c, and 204<f stored in a action can occur. 

Horary 206. By way of example, the library 206 can be a Specifically, once the user 216 indicates that additional 

publisher's Ubrary of any or all of the original works owned permissions to the DOCUMENT 204 are desired the 

by or authored for the publisher. Author 208, for example. VIEWER can display selected terms to the DOCUMENT as 

illustrates one such author connected to the library 206 stored within the DOCUMENT or as stored within the server 

through a personal computer 210 and communication line 202. In either case, the VIEWER causes the computer 220 

212. The computer 210 is a data processor that includes a to generate a licensing request signal and issue that signal to 

PACKAGER 214 constructed according to the invention and the server 202. Preferably, the user 216 also designates— 

as described hereinabove. In the preferred embodiment, the ^ through the VIEWER — the desired use of the media within 

PACKAGER 214 is a software module stored within the the DOCUMENT. The user 216 can thereafter accept the 

computer's internal memory 210c to control the data pro- licensing terms to the DOCUMENT 204, and, if accepted 

cessor's actions in accord with the invention. Through the the user 216 receives notification from the server 202 that 

PACKAGER 214, the author 208 can create and package auxiliary permissions are granted for the desired use 

any of the DOCUMENTS 204. The computer 210 also m me event that DOCUMENT 204 is a derivative work, 

includes a communication section 210*, to facilitate on-line the VIEWER 222 determines that auxiliary jJSJtaS 

™mcaUons, and a computer display 210c. also required, for example, from^ve/^8, the sJ£ 

The DOCUMENTS 204 are secure containers of elec- designated by the original author of the media within 

tronic media, as described herein, and are stored in the DOCUMENT 204. 

hbrary 206 as digital files, such as within a CD-ROM, or 50 The server 202 stores transactional information about the 

within a computer memory, fteferably, the DOCUMENTS DOCUMENTS 204. For example, each Iten^™^ 

nw^vZ* \ USCr SUC r aS USCr216 ™?™ to ^oughmeserver202isstorXafile22^ suchas within 

DOCUMENTS through an on-line connection 218 between a computer memory 230. In this way, the owner or admin- 

the user's personal computer 220 and the library 206. ist rator of the DOCUMENTS can assess the UcenTing^s 
The owner of the library 206 may also have copyrights in 55 generated by the DOCUMENTS. Likewise, the server 202 

DOCUMENTS such as DOCUMENT 204*, which repre- also stores information or files 2296 that set forth the number 

sents a CD-ROM of a media-packaged work that is distrib- of DOCUMENTS registered thereon, so that, again the 

uted to the User 216 by mail. The CD-ROM 204e, for owner or DOCUMEOT-administrator can assess server 

example, exemplifies one other published work that is usage. The files 229* 129b are preferably available through 
created by the author 208 and packaged by the PACKAGER so the communication section 202a. 

214. As above the server 202 also functions as the regis- m one embodiment of the invention, the server 202 

trahon and ^authorization server for DOCUMENT 204,. iQcludes an interD al memory 202*. connected tolnTcom 

In accord with the invention, the user's computer 220 is munication section 202*, that stores selected information 

a data processor that includes a VIEWER 222 constructed about the DOCUMENTS registered thereon. For example 
according to the invention and as described hereinabove. In 65 licensing terms to the DOCUMENT 204 can be stored 

thej,referxedernrx)diment, the VIEWER 222 is a software within the memory 202i. A relay section 202c operates to 

module stored within the computer's internal memory 220a relay such terms to the processor 220 in response to a license 
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request signal prompted by the user 216. A data comparison 
section 22 (W operates to compare the user's reply to the 
licensing terms, and to generate and transmit the requested 
auxiliary permissions when the response signals correspond 
to the requisite terms specified in the license information s 
stored in memory 2026 (or alternatively in the 
DOCUMENT). Accordingly, once the user 216 receives the 
auxiliary permissions, that user is provided with additional 
authorizations to use the media within the DOCUMENT 
204; and the VIEWER 222 enables the user 216 to access the 10 
DOCUMENT 204 up to the maximums allowed in the 
bumped- up permissions data set 

The invention thus attains the objects set forth above, 
among those apparent from preceding description. Since 
certain changes may be made in the above apparatus and 15 
methods without departing from the scope of the invention, 
it is intended that all matter contained in the above descrip- 
tion or shown in the accompanying drawing be interpreted 
as illustrative and not in a limiting sense. 

It is also to be understood that the following claims are to 
cover all generic and specific features of the invention 
described herein, and all statements of the scope of the 
invention which, as a matter of language, might be said to 
fall there between. 

Having described the invention, what is claimed as new 
and secured by Letters Patent is: 

1. A method for managing copyrighted electronic media, 
comprising the steps of: 

formatting media into a secure electronic container, the 30 
container including a digital representation of the 
media and a minimum permissions data set specifying 
the minimum authorized use of the media; 

registering the electronic media on a server and assigning 
a registration identifier to the container, the server 35 
being connected for on-line data transfers with at least 
one computer, 

transmitting licensing terms from the server to the com- 
puter in response to a request to license the media; 

augmenting the r^rmissions data set with auxiliary per- 40 
missions when the computer indicates acceptance of 
the terms, the auxiliary permissions providing autho- 
rization to utilize the media beyond what is authorized 
in the rninimum permissions data set; and 

providing, through the server, selected transactional 45 
information, the information including at least one of 
(i) a number of registrations at the server and (ii) a 
quantitative indication of licensing revenues generated 
through the server. 

2. A. system for authorizing access to copyrighted elec- 
tronic media, comprising an authorization server connected 
for data transfer between an internal memory and at least one 
external data processor, the server having 

(A) means for determining selected information about the 55 
electronic media, the selected information including 
one or more terms that enable auxiliary uses of the 
media; 

(B) relay means, responsive to a request signal by the data 
processor, far communicating the selected information 
to the data processor; and 

(C) data comparison means for receiving response signals 
from the data processor and comparing the selected 
information with the response signals, the data com- 
parison means generating an acceptance signal when 65 
the response signals correspond to at least a part of the 
selected information, indicating acceptance of one or 
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more terms, and comniuni eating the acceptance signal 
to the data processor to authorize access to the media in 
accord with the uses corresponding to the accepted 
terms. 

3. A system according to claim 2, wherein the selected 
information comprises a digital representation of at least one 
of (i) a copyright ownership of the media, (ii) a set of 
licensing terms for the media for different user 
classifications, and (iii) revenue estimates about the media. 

4. A system according to claim 2, further comprising 
memory means for storing the electronic media. 

5. A system according to claim 4, further comprising 
electronic media stored within the memory means, the 
media being a digital representation of at least one of (i) 
literary work, (ii) musical work, (iii) dramatic work, (iv) 
choreographic work, (v) pictorial work, (vi) audiovisual 
work, (vii) a sound recording, and (viii) architectural work 

6. A system according to claim 5, wherein the media is 
encrypted. 

7. A system according to claim 2. further comprising data 
header means for storing selected header information about 
the media, the header information being a digital represen- 
tation of at least one of (i) a unique file format, (ii) a 
document format revision code, (iii) a creator application 
type, (iv) a media data type, and (v) a comment field. 

8. A system according to claim 2, further comprising 
means for storing an unencrypted header for uniquely iden- 
tifying the electronic media. 

9. A system according to claim 2, further comprising 
means for storing a data identifier, the data identifier speci- 
fying selected registration information about the electronic 
media. 

10. A system according to claim 9, wherein the data 
identifier comprises a digital representation of at least one of 

(i) a registration code uniquely identifying the server, and 

(ii) a registration number uniquely identifying the media in 
the internal memory. 

11. A system according to claim 2, further comprising 
means for tagging an encrypted digital signature to the 
media, the signature providing subsequent authentication of 
the media. 

12. A system according to claim 2, further comprising 
means for appending auxiliary permissions data to the 
media, the auxiliary permissions forming a digital represen- 
tation that specifies the auxiliary uses to the media. 

13. A system according to claim 12, wherein the uses 
comprise a license to the media. 

14. A system according to claim 5, further comprising 
auxiliary permission means for appending use restrictions 
the media selectively, the use restrictions forming a digital 
representation that authorizes auxiliary uses of the media 

15. A system according to claim 2, further comprising a 
sourceworks extension module for storing a bibliographic 
record of the media, the bibliographic record taming a 
digital representation that specifies authorship information 
and the access restrictions associated with the media. 

16. A system according to claim 2, further comprising 
access control means for withholding access authorization to 
a portion of the media, the access control means being 
responsive to the acceptance signal to remove access restric- 
tions to the portion. 

17. A method for authorizing data transfers of copyrighted 
digital media, comprising the steps of: 

affixing content-specific permission information to the 

media, the permission information 
specifying actions which are restricted and which require 

augmented access privileges to perform; 
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storing selected information about the electronic media on . 
an authorization server connected for data transfer with 
at least one computer, the selected information includ- 
ing one or more terms that specify augmented access to 
the media; 5 

electronically communicating selected information about 
the media to the computer in response to a request 
signal representing a request for augmented access to 
the media; 

receiving response signals from the computer and com- 10 
paring the selected information with the response 
signals, the response signals including a representation 
indicating acceptance of the terms; and 

generating an acceptance signal when the response signals 
correspond to at least a part of the selected information, 1 
thereby aiithbrizing augmented access to the media. 

18. A method according to claim 17, wherein the step of 
communicating selected information comprises the step of 
communicating a digital representation of at least one of (i) 
a copyright ownership of the media, (ii) a set of licensing 20 
terms for the media for different user classifications, and (iii) 
revenue estimates about the media. 

19. A method for maintaining an electronic bibliographic 
record of digital media, comprising the steps of: ^ 

opening an object container containing the digital media, 
the object container including a representation of the 
media, a data identifier of media, and data specifying 
rninimurn permissions required to access the media; 

editing the digital media in an application environment; 30 
and 

attaching the data identifier and minimum permissions 
data to the edited media into a sourceworks list, the 
sourceworks list thereby providing a bibliographic 
record of the media. 35 

20. A method according to claim 19, wherein the con- 
tainer further includes auxiliary permissions data specifying 
subsequent use authorizations to the media, and further 
comprising the step of modifying the minimum permissions 
data such that the minimum permissions data and auxiliary 40 
permissions data are viewable to subsequent potential users 
of the media. 

21. A computer network for managing original works of 
authorship, comprising: 

means for affixing copyright information to a binary data 45 
element corresponding to an authored media; 

means for affixing rninimurn permissions information to 
the data element, the permission information specifying 
a nunimum authorized use of the data element; $Q 

a server for providing authorizations to the data element, 
the server including a control module for transacting 
licenses with one or more computers networked with 
the server; and 

means for tagging the data element with auxiliary 55 
permissions, the auxiliary permissions specifying the 
maximum authorized use of the media. 

22. A system according to claim 21, further comprising 
means for niaintaining copyright information through 
derivative uses of the data element on the network. 

23. A computer network according to claim 21, wherein 
the means for tagging comprises means for appending 
identifying information to the data element, the identifying 
information being selected from a digital representation of at 
least one of (i) a source of the data element, (ii) a registry of 
the data dement, (iii) a format of the data, (iv) a transmis- 
sion history of the data element; (v) a derivative minimum 
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permission data set for subsequent restricted access to the 
data on the network; (vi) a digital signature of an author of 
the data element to provide an authenticity to the data 
element, (vii) a copyright ownership of the data item, (viii) 
licensing detail about the data element, and (ix) revenue 
detail about the data element 

24. A system for packaging electronic media within a 
secure digital document, comprising: 

means for enclosing the media as a binary data object 
within a data container, 

means for attaching identification data to the data con- 
tainer; 

means for attaching rninimurn permissions data to the data 
container, the minimum permissions data specifying 
rmnimum uses authorized for the media without a 
license to the media; 

the data container, identification data, and minimum per- 
missions thereby forming the digital document; and 
auxiliary permission means for appending use restrictions 
to the data container, the use restrictions forming a 
digital representation that extends the set of authorized 
uses available to a user of the media. 

25. A system for packaging electronic media within a 
secure digital document, comprising: 

means for enclosing the media as a binary data object 

within a data container; 
means for attaching identification data to the data con- 
tainer, 

means for attaching minimum permissions data to the data 
container, the minimum permissions data specifying 
rninimurn uses authorized for the media without a 
license to the media; 
the data container, identification data, and ininimumi per- 
missions thereby forming the digital document; and 
data header means for storing selected header information 
about the media, the header information being a digital 
representation of at least one of (i) a unique file format, 
(ii) a document format revision code, (iii) a creator 
application type, (iv) a media type, and (v) a comment 
field. 

26. A system for packaging electronic media within a 
secure digital document, comprising; 

means for enclosing the media as a binary data object 

within a data container; 
means for attaching identification data to the data con- 
tainer; 

means for attaching minimum permissions data to the data 
container, the minimum permissions data specifying 
minimum uses authorized for the media without a 
license to the media; 
the data container, identification data, and rninimurn per- 
missions thereby forming the digital document; and 
means for storing an unencrypted header for uniquely 
identifying the electronic media* 

27. A system for packaging electronic media within a 
secure digital document, comprising: 

60 means for enclosing the media as a binary data object 
within a data container; 

means for attaching identification data to the data con- 
tainer; 

means for attaching minimum permissions data to the data 
65 container, the minimum permissions data specifying 
minimum uses authorized for the media without a 
license to the media; 
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the data container, identification data, and minimum per- 
missions thereby forming the digital document; and 

means for storing a data identifier, the data identifier 
specifying selected registration information about the 
electronic media. 5 

28. A system according to claim 27, wherein the data 
identifier comprises a digital representation of a registration 
code uniquely identifying a server, and a registration number 
uniquely identifying the media on the server. 

29. A system for packaging electronic media within a 1Q 
secure digital document, comprising: 

means for enclosing the media as a binary data object 
within a data container; 

means for attaching identification data to the data con- 
tainer; 15 

means for attaching minimum permissions data to the data 
container, the minimum permissions data specifying 
minimum uses authorized for the media without a 
license to the media; 

the data container, identification data, and minimum per- 2Q 
missions thereby forming the digital document; and 

means for packaging the media from within one of (i) a . 
stand-alone software module, (ii) a plug-in software 
module corresponding to an application environment 
that generated or modified the media, (iii) a program 
extension corresponding to an application environment 25 
which generated or modified the media, (iii) a software 
module integrated into an application environment by 
way of a source code library or linkable object code 
performing substantially similar functions. 

30. A system for unpackaging electronic media configured 30 
within a secure electronic container, comprising: 

means for recognizing permissions data attached to the 
media, the permissions data specifying one or more 
authorizations needed to electronically access the 
media; and 


means for utilizing the media in a manner corresponding 
to the mi nimnm permissions when a user has the 
requisite authorizations to do so. 

31. A system according to claim 30, further comprising 
means for engaging an authorization server when the user 
does have the requisite authorizations. 

32. A system according to claim 31, further comprising 
(A) means for electronically transacting a license with the 
server, and (B) means for receiving, from the server, auxil- 
iary permission to utilize the media. 

33. A system according to claim 30, further comprising 
means for interpreting a digital signature attached to the 
media, the digital signature providing an authentication of 
the media. 

34. A method for protecting electronic media comprising 
the steps of: 

packaging the electronic media within a secure electronic 
container by (i) attaching a data identifier to the media, 
and (ii) attaching data specifying rninimum permis- 
sions required to use the media; 

registering the container on a server connected for data 
transfer with at least one data processor; 

transferring auxiliary permissions from the server to the 
data processor upon acceptance of licensing terms 
associated with the media; and 

affixing use restrictions to the media selectively, the use 
restrictions forming a digital representation that is 
readable by the data processor to restrict subsequent 
access to the media by a second data processor con- 
nected on the network. 
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